SINGLE-PERSON LIMITED LIABILITY COMPANY (EURL) and the GDPR The single-person limited liability company (EURL) is a legal business structure in France that is similar to the Limited Liability Company (SARL) but is operated by a single person, called the sole shareholder. The Single-Person Limited Liability Company (EURL) is intended for an individual wishing to create […]

Which French legal entities are affected by the General Data Protection Regulation? “The data controller is the legal entity (company, municipality, etc.) or natural person who determines the purposes and means of processing, i.e. the objective and the way in which it is carried out” (CNIL) The GDPR applies to any organization, […]

Data Protection Officer The mission of a Data Protection Officer (DPO) is to ensure that the company complies with regulations regarding the protection of personal data, such as the General Data Protection Regulation (GDPR) in Europe. The DPO is also responsible for […]

THE MAIN SANCTIONS IMPOSED IN EUROPE AND FRANCE. The General Data Protection Regulation (GDPR), which came into force in May 2018, has since seen the French data protection authority, the National Commission for Information Technology and Civil Liberties (CNIL), impose several fines on numerous companies for non-compliance with the GDPR. […]

MAPPING THE COMPANY'S PERSONAL DATA ECOSYSTEM Mapping your company's internal and external personal data ecosystem allows you to identify those among your employees or collaborators who are directly or indirectly involved in the processing of this private data. In an informed manner, for all those […]

GDPR ASSESSMENT OF SUBCONTRACTORS The GDPR (General Data Protection Regulation) requires companies that outsource the processing of personal data to processors to ensure that they provide an adequate level of data protection. This means that companies must assess their processors' compliance with the GDPR. […]

Like your business, your commitment to protecting private data isn't just about a pretty picture. Every day, new issues arise that must be addressed in compliance with regulatory requirements: a request from a data subject? A new project to manage? A need for assessment? An incident that calls into question the integrity […]